Sr. Security Engineer, Product Security

8 Months ago • 8 Years + • Product Management

Job Summary

Job Description

The Sr. Security Engineer, Product Security will provide technical leadership to a team securing Xerox's digital platforms. Responsibilities include assessing applications for vulnerabilities, implementing secure SDLC processes, performing secure code reviews, developing security automation tools, defining security requirements, conducting security training, reporting on security metrics, researching industry trends, and acting as a security evangelist. This role requires strong application security expertise and collaboration skills.
Must have:
  • Assess applications for vulnerabilities
  • Implement secure SDLC processes
  • Secure code reviews/static analysis
  • Develop security automation tools
  • Threat modelling, security design reviews
  • Security training for development teams
  • Report on product security metrics
  • 8+ years cybersecurity experience, 5+ in product security
Good to have:
  • Java, .Net, C#, C, C++ experience
  • Prior software development experience

Job Details

About the job


About Xerox Holdings Corporation

For more than 100 years, Xerox has continually redefined the workplace experience. Harnessing our leadership position in office and production print technology, we’ve expanded into software and services to sustainably power today’s workforce. From the office to industrial environments, our differentiated business solutions and financial services are designed to make every day work better for clients — no matter where that work is being done. Today, Xerox scientists and engineers are continuing our legacy of innovation with disruptive technologies in digital transformation, augmented reality, robotic process automation, additive manufacturing, Industrial Internet of Things and cleantech. Learn more at www.xerox.com and explore our commitment to diversity and inclusion.

Summary:

This position is part of the Xerox Cyber Security team that is responsible for driving security of Xerox digital platforms. The qualified candidate will provide technical leadership to a multidisciplinary product security team that is responsible for securing enterprise systems, applications, and products across a broad spectrum of technologies. The candidate must demonstrate a passion for application security and lead by example that fosters continued growth and technical expertise within the team.

Responsibilities include, but are not limited to:

  • Assess applications and products for security vulnerabilities and design flaws
  • Implement secure SDLC processes through effective collaboration
  • Manual and Automated Secure Code Review
  • Development of security automation tools
  • Develop and maintain secure coding practices and security engineering standards for the development team
  • Perform threat modelling, security design reviews of application or products and define security requirements as part of SDLC process
  • Security training for internal development teams
  • Track and report on product security metrics and communicate the security posture of products to stakeholders.
  • Research, analyze and report on security industry trends and products
  • Serve as a security evangelist for executive management and business stakeholders.

Knowledge and Skills Required:

  • Strong understanding of common vulnerabilities, attack vectors and corresponding mitigation techniques
  • Experience in performing secure code reviews/reviewing results of static analysis tools
  • In-depth understanding of secure coding practices and secure development life cycle principles.
  • Good understanding of SSDLC as well as development and integration of tools used as part of CI/CD process
  • Have good understanding of authentication and authorization standards and protocols (SAML, Oauth, LDAP etc.)
  • Strong exposure to popular application security standards including OWASP TOP 10, SANS TOP 25 etc.
  • Proficiency with at least one of the following programming languages desired: Java, .Net, C#, C, C++
  • Prior software development experience is a plus.
  • Strong interpersonal skills as well as excellent written and verbal communication skills
  • Uncompromising personal and professional integrity and ethics

Education and Experience Required:

  • B.S in computer science, information systems, engineering or related field.
  • Advanced degree preferred, i.e. MBA or MS
  • Over 8 years of experience in cybersecurity, with at least 5 years in product security
  • One or more Industry-standard security certifications (such as OSCP, OSWE, CWEE, OSED)

Similar Jobs

Eof games - Concept Artist

Eof games

Germany (On-Site)
3 Weeks ago
sphere entertainment - Project Manager

sphere entertainment

Burbank, California, United States (On-Site)
1 Month ago
Interactive Brokers - Data Analytics and Reports Developer

Interactive Brokers

Mumbai, Maharashtra, India (Hybrid)
2 Months ago
PwC - IFS Solution Architect

PwC

Warsaw, Masovian Voivodeship, Poland (Hybrid)
2 Months ago
Welltech - Group Head of Accounting

Welltech

Ukraine (Remote)
4 Months ago
binance - Senior Product Manager, DEX (Web)

binance

Taipei City, Taiwan (Remote)
5 Months ago
Univision - Senior Product Manager, Partnerships

Univision

Bogota, Colombia (On-Site)
1 Year ago
Diligent Corporation - Director, Product Management – Agentic AI Platform

Diligent Corporation

New York, United States (Hybrid)
1 Month ago
Tesla - Production Worker, Mechanical Manufacturing

Tesla

Prüm, Rhineland-Palatinate, Germany (On-Site)
5 Months ago
Match Group - Lead Product Manager

Match Group

Los Angeles, California, United States (Hybrid)
1 Month ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

Prophecy - Delivery Solution Architect

Prophecy

(Remote)
2 Months ago
smartbear - Customer Success Manager

smartbear

Somerville, Massachusetts, United States (On-Site)
2 Weeks ago
Xplor Technologies - Senior Sales Executive of ISV Partnerships – Payment Solutions

Xplor Technologies

San Francisco, California, United States (Remote)
1 Month ago
PwC - Senior Associate - .NET, MS Engineering, Advisory

PwC

Kolkata, West Bengal, India (On-Site)
1 Year ago
broadcom - VMware Cloud Foundation - VM Service Staff Engineer

broadcom

United States (On-Site)
2 Weeks ago
Scanline VFX - Lead Compositor

Scanline VFX

Seoul, South Korea (Hybrid)
8 Months ago
WebMD - Marketing Analyst

WebMD

Navi Mumbai, Maharashtra, India (On-Site)
1 Month ago
Tesla - Parts Advisor

Tesla

Pinkenba, Queensland, Australia (On-Site)
5 Months ago
ISS Stoxx - Journalist

ISS Stoxx

Sydney, New South Wales, Australia (On-Site)
1 Year ago
Postman - Technical Scale Customer Success Manager

Postman

Boston, Massachusetts, United States (Hybrid)
1 Month ago

Get notifed when new similar jobs are uploaded

Jobs in Bengaluru, Karnataka, India

Trek - CRM Business Analyst

Trek

India (On-Site)
2 Weeks ago
PwC - IN-Manager_Industrial Decarbonization_Decarbonization_Advisory_Ahmedabad

PwC

Ahmedabad, Gujarat, India (On-Site)
10 Months ago
Assystems - Site /Field engineer (Civil )

Assystems

Gujrat, Punjab, India (On-Site)
9 Months ago
Capgemini - Site Reliability Engineer

Capgemini

Pune, Maharashtra, India (On-Site)
3 Months ago
Prophecy - Cloud Engineer

Prophecy

Bengaluru, Karnataka, India (On-Site)
3 Months ago
Capgemini - Business Advisor - A

Capgemini

Mumbai, Maharashtra, India (On-Site)
1 Month ago
Capgemini - Power Platform Architect

Capgemini

Mumbai, Maharashtra, India (On-Site)
3 Months ago
Paytm - Area Sales Manager - Deputy Manager

Paytm

Visakhapatnam, Andhra Pradesh, India (On-Site)
1 Month ago
Illumina - Sr Integration Engineer

Illumina

Bengaluru, Karnataka, India (On-Site)
2 Months ago
Liquid Asia - Senior Graphic Designer

Liquid Asia

Gurugram, Haryana, India (On-Site)
1 Month ago

Get notifed when new similar jobs are uploaded

Product Management Jobs

Corsair - Product Engineer

Corsair

Taipei City, Taiwan (On-Site)
4 Months ago
Blazesoft - Product Operations Manager

Blazesoft

Vaughan, Ontario, Canada (On-Site)
7 Months ago
Immutable - Senior Product Analyst

Immutable

Sydney, New South Wales, Australia (Hybrid)
4 Weeks ago
Marvelous games - Music Video Department] <Anime/Music> Music Producer

Marvelous games

Tokyo, Japan (On-Site)
3 Months ago
hogarth - Account Manager (In-store MD/SP Production)

hogarth

Tokyo, Japan (Hybrid)
1 Week ago
The Globel Talent Co - YouTube & Social Media Video Producer

The Globel Talent Co

Bogota, Colombia (Remote)
3 Weeks ago
InFeedo AI - Product Marketing Manager

InFeedo AI

Gurugram, Haryana, India (Hybrid)
1 Month ago
Paytm - Product Manager (AI)

Paytm

Bengaluru, Karnataka, India (On-Site)
10 Months ago
Perplexity - AI Research/Machine Learning Engineer - Agent Products

Perplexity

California, United States (On-Site)
2 Months ago

Get notifed when new similar jobs are uploaded